For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Seth_Cooper's avatar
Seth_Cooper
Icon for Employee rankEmployee
Sep 18, 2015

Hi,

Is this an app using LTM+APM or are you running this through portal access?

Either way I would use an iRule to fix this. The question is what do you want to happen when the click logout?

  • Do you want the user to see the logon form but just not be SSOd back in?
  • Do you want them to see another page that says "Thanks for logging out" with a link to the login page again?
  • Do you want to close the browser on logout?
  • Do you want them to see the APM logout page?

You will also need some way of telling that the user is logging out. Maybe the request has a query string in it or you actually hit a logout page that then redirects you to the logon page.

When you have that information decided then you can create an iRule similar to the one below to do what you need.

when HTTP_REQUEST {
    set close_browser 0
    if { [HTTP::query] contains "ACTION=LOGOUT" } {
        set close_browser 1
    }
}

when HTTP_RESPONSE {
    if { $close_browser eq 1 } {
        HTTP::respond 200 content "
            Logout Page
            
            
            You have successfully logged out.  Please close this page.
            
            "
        set close_browser 0 
    }
}

This iRule looks for a querystring of "ACTION=LOGOUT" on all requests and if it finds on then on the response back to the client (instead of sending back the logon page) we send a small page that will try to run the javascript close command and close it. If the javascript doesn't run then they get a small logout message.

Seth